Senior Threat Researcher
Austin, TX

Job Description

Description

Cylance is one of the fastest growing companies in the history of cybersecurity. By successfully applying artificial intelligence and machine learning to crack the DNA of malware, Cylance has redefined the endpoint protection market, garnered acclaim from industry analysts and won numerous awards including "Best Emerging Vendor" from SC Magazine. If you have the passion and desire to disrupt industries, protect the world from cyberattacks, and be at the forefront of a revolutionary new technology, we want you to join us!

THE POSITION

Cylance is seeking a skilled threat intelligence researcher with a strong background in reverse engineering, network protocol analysis, and malware analysis across a variety of binary formats. The individual will be responsible for working independently, as well as part of a team, to produce comprehensive threat reports, provide actionable malware intelligence, and support ongoing investigations.

WHAT YOU WILL DO

* Hunt and discover previously unidentified and emerging threats through malware and network analysis
* Work on long-term adversarial research projects (like Cylance's Operation Cleaver)
* Discover, track, and correlate attacker-related command and control infrastructure
* Analyze current and new exploit vectors and techniques for gaining and maintaining access

WHO WE ARE LOOKING FOR

* Over three years of background experience in either network forensic analysis, malware/threat analysis, or other technical security-related roles (consulting/engineering)
* Advanced understanding of Windows Portable Executable file anatomy
* Installation, use, and configuration of virtualization software, including virtual networking and host isolation
* Comprehensive understanding of assembly language and multi-platform reverse engineering proficiency in both x86 and x64 architectures
* Current knowledge of tools, tactics and procedures associated with active attack groups
* Experience developing and/or auditing one or more of C, C++, or Objective-C
* Programming experience (C, C++, or C#) or scripting experience with Python, Perl, Javascript, or other scripting languages
* Strong understanding of current exploitation techniques across multiple platforms and the ability to analyze malicious Javascript
* Prior experience researching, discovering, and tracking adversarial and advanced persistent threats
* Proficiency in network traffic analysis
* System administration experience, including familiarity with command-line interfaces and database administration
* Familiarity with crash analysis and runtime instrumentation (IDA, GDB, ImmDbg, Olly, WinDbg, PINtool, etc.)
* Ability to effectively communicate analytic findings both verbally and in polished written reports
* Flexible and adaptable self-starter with strong relationship-building skills
* Must have a passion for your work and an ability to apply that passion to both daily tasks and larger projects
* Collaborative and team-oriented attitude
* Effective problem-solving capabilities
* Takes initiative and approaches all tasks and projects proactively
* Ability to prioritize and complete multiple tasks with little to no supervision
* Intellectual curiosity, humility, accountability and positive approach
* Requires the ability to work independently with substantial latitude for action and decision while maintaining focus on achieving optimal outcomes as part of a collaborative development effort

ABOVE AND BEYOND

* Professional development experience in Python, C languages
* Use of automated analysis sandbox tools
* Familiarity with anti-virtualization and anti-analysis techniques
* Ability to patch malware to execute in testing environment
* Blind protocol analysis and protocol reversing/protocol tools development
* Professional consulting experience
* GREM/CREA Certification or other malware analysis certifications

WHAT WE NEED FROM YOU TO APPLY

* Current resume
* Cover letter/summary expressing:
* Why you are interested in working at Cylance
* The skills, strengths and expertise you will contribute to our diverse team of extraordinary talent and humble hearts



BENEFITS AND PERKS

In addition to medical, dental, vision and 401(K) matching, we offer other great benefits and a slew of perks such as casual dress attire, plethora of employer-sponsored food and snack items, toll road/public transportation subsidy, gym membership discount, etc. We're proud to be certified as A Great Place to Work for 2017-2018!

Cylance Inc. is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, disability, protected veteran status, or any other basis protected by applicable federal, state, or local law.